Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    413ea23f268bf5c148b47ae9ee4528f54053af92b29583c347e2b0266499a3d1

  • Size

    711KB

  • Sample

    220508-fkva4aadhl

  • MD5

    012dad329fc555d768e61390da8bac5f

  • SHA1

    7d32f71572bc1e28a9f138221f69d37e227eff70

  • SHA256

    413ea23f268bf5c148b47ae9ee4528f54053af92b29583c347e2b0266499a3d1

  • SHA512

    c1878fb53ca6998907b5a46fcecdb0977a478eba58d97730b6b23ab6836a968273f4b20dbd454da96146c7964bd49c2b31e97ab06957f0abedf7a4f5cf79546e

Malware Config

Targets

    • Target

      413ea23f268bf5c148b47ae9ee4528f54053af92b29583c347e2b0266499a3d1

    • Size

      711KB

    • MD5

      012dad329fc555d768e61390da8bac5f

    • SHA1

      7d32f71572bc1e28a9f138221f69d37e227eff70

    • SHA256

      413ea23f268bf5c148b47ae9ee4528f54053af92b29583c347e2b0266499a3d1

    • SHA512

      c1878fb53ca6998907b5a46fcecdb0977a478eba58d97730b6b23ab6836a968273f4b20dbd454da96146c7964bd49c2b31e97ab06957f0abedf7a4f5cf79546e

    • FakeAV, RogueAntivirus

      FakeAV or Rogue AntiVirus is a class of malware that displays false alert messages.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks